CVE-2024-1456
published 2024-04-16CVE-2024-1456: An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training'…
PriorityP427high7.1CVSS 3.0
AVLACLPRNUIRSUCHIHAN
EPSS
0.24%
15.4th percentile
An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| h2o | h2o | — | — |
| h2oai | h2oai_h2o-3 | unspecified – latest | — |
CVSS provenance
nvdv3.07.1HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9vwm-6vm6-ffwv: An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository
ghsa_unreviewed·2024-04-16
CVE-2024-1456 [HIGH] GHSA-9vwm-6vm6-ffwv: An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository
An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.
Red Hat
kernel: 9p: add missing locking around taking dentry fid list
vendor_redhat·2024-06-25·CVSS 7.8
CVE-2024-39463 [HIGH] CWE-416 kernel: 9p: add missing locking around taking dentry fid list
kernel: 9p: add missing locking around taking dentry fid list
In the Linux kernel, the following vulnerability has been resolved:
9p: add missing locking around taking dentry fid list
Fix a use-after-free on dentry's d_fsdata fid list when a thread
looks up a fid through dentry while another thread unlinks it:
UAF thread:
refcount_t: addition on 0; use-after-free.
p9_fid_get linux/./include/net/9p/client.h:262
v9fs_fid_find+0x236/0x280 linux/fs/9p/fid.c:129
v9fs_fid_lookup_with_uid linux/fs/9p/fid.c:181
v9fs_fid_lookup+0xbf/0xc20 linux/fs/9p/fid.c:314
v9fs_vfs_getattr_dotl+0xf9/0x360 linux/fs/9p/vfs_inode_dotl.c:400
vfs_statx+0xdd/0x4d0 linux/fs/stat.c:248
Freed by:
p9_fid_destroy (inlined)
p9_client_clunk+0xb0/0xe0 linux/net/9p/client.c:1456
p9_fid_put linux/./include/net/9p/client.h:278
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-04-16
Published